[email protected]CVE-2000-0392

HistoryMay 16, 2000 - 4:00 a.m.

CVE-2000-0392

2000-05-1604:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2000-0392

buffer overflow

ksu

kerberos 5

gain root privileges

nvd

7.1 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

9.4%

JSON

Buffer overflow in ksu in Kerberos 5 allows local users to gain root privileges.

CPENameOperatorVersion
cygnus:kerbnetcygnus kerbneteq5.0
cygnus:cygnus_network_securitycygnus cygnus network securityeq4.0
mit:kerberosmit kerberoseq4.0
mit:kerberos_5mit kerberos 5eq1.0
mit:kerberos_5mit kerberos 5eq1.1.1
redhat:linuxredhat linuxeq6.2

CPE	Name	Operator	Version
cygnus:kerbnet	cygnus kerbnet	eq	5.0
cygnus:cygnus_network_security	cygnus cygnus network security	eq	4.0
mit:kerberos	mit kerberos	eq	4.0
mit:kerberos_5	mit kerberos 5	eq	1.0
mit:kerberos_5	mit kerberos 5	eq	1.1.1
redhat:linux	redhat linux	eq	6.2

References

archives.neohapsis.com/archives/bugtraq/2000-05/0184.html

archives.neohapsis.com/archives/freebsd/2000-05/0295.html

www.cert.org/advisories/CA-2000-06.html

www.redhat.com/support/errata/RHSA-2000-025.html

www.securityfocus.com/bid/1220

7.1 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

9.4%

JSON

Related for CVE-2000-0392

cert1